mace-opensaml-users - RE: cookie in header
Subject: OpenSAML user discussion
List archive
- From: Scott Cantor <>
- To: 'Shuli Zhou/schedule' <>,
- Subject: RE: cookie in header
- Date: Thu, 08 Jan 2004 16:00:18 -0500
- Importance: Normal
- Organization: The Ohio State University
> I need to include a cookie when sending a SAMLRequest via
> SAMLSOAPBinding's send method. Is there a way to do it?
Not currently. It wouldn't be inordinately hard to add that, but by some
interpretations, that would violate the SAML spec, since it would introduce
an HTTP header that shouldn't need to be there for a SAML authority to
respond.
OTOH, I could see implementing some kind of session-based authentication
between the client and the authority that would need a cookie, so it's
probably a gray area.
-- Scott
- cookie in header, Shuli Zhou/schedule, 01/08/2004
- RE: cookie in header, Scott Cantor, 01/08/2004
- RE: cookie in header, RL 'Bob' Morgan, 01/08/2004
- RE: cookie in header, Scott Cantor, 01/08/2004
- RE: cookie in header, RL 'Bob' Morgan, 01/08/2004
- RE: cookie in header, Scott Cantor, 01/08/2004
- RE: cookie in header, RL 'Bob' Morgan, 01/08/2004
- RE: cookie in header, Scott Cantor, 01/08/2004
- RE: cookie in header, RL 'Bob' Morgan, 01/08/2004
- RE: cookie in header, Scott Cantor, 01/08/2004
Archive powered by MHonArc 2.6.16.